How severe is CVE-2022-41636?

CVE-2022-41636 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2022-41636

Name: haas_controller
Author: haascnc

9.1CRITICAL

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being pass

Published: 10/28/2022Updated: 11/21/2024

Description

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being passed to and from the controller.

AI AnalysisPowered by AI

Affected Products

haascnchaas_controller

100.20.000.1110

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource